pnpm
Warn
Audited by Snyk on Feb 16, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.80). The skill documents and instructs running pnpm against public package sources (e.g., .npmrc registry=https://registry.npmjs.org/, commands like "pnpm dlx degit user/repo", and alias/specifiers such as "npm:user/repo#commit") which will fetch and install untrusted, user-published content from the open web that the agent would read/process as part of its workflow.
Audit Metadata